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to protect the original digital information. In another embodiment, a digital 
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COPY PROTECTION OF DIGITAL DATA CC^INING STJSGAMOGRAFHIC AND CRYPTOGRAPHIC TECH 
NIQUES 

BACKGROUND OF TBOE INVENTION 
5 Increasingly, commercially valuable information is being created and 

stored in "digital" form. For example, music, photographs and video can all be 
stored and transmitted as a series of numbers, such as Ts and O's. Digital techniques 
let the original information be recreated in a very accurate manner. Unfortunately, 
digital techniques also let the infonnation be easily copied without the information 

10 owner's permission. 

Because unauthorized copying is clearly a disincentive to the digital 
distribution of valuable information, it is important to establish responsibility for 
copies and derivative copies of such works. For example, if each authorized digital 
copy of a popular song is identified with a unique numb^, any unauthorized copy of 

IS Ike song would also contain the number. This would allow the owner of the 
information, such as a song publisher, to investigate vAyo made the unauthorized 
copy. Unfortunately, it is possible that the unique number could be erased or altered 

0 

if it is simply tacked on at the beginning or end of the digital information. 

As will be described, known digital '^watermark" techniques give 

20 creators and publish^ of digitized multimedia content localized, secured 
identification and audientication of that content. In considering the various forms of 
multimedia content, such as ^^master," stereo, National Television Standards 
Committee (NTSC) video, audio tape or compact disc, tolerance of quality will vary 
with individuals and affect tiie underlying commercial and aesdietic value of the 

25 content For example, if a digital version of a popular song sounds distorted, it will 
be less valuable to users. It is th^fore desirable to embed copyright, ownership or 
purchaser infonnation, or some combination of these and related data, into the 
content in a way tiiat will damage the content if the watermark is removed without 
authorization. 

30 To achieve &ese goals, digital watermark systems insert ownership 

infonnation in a way that causes little or no noticeable effects, or "artifacts," in the 
underlying content signal. For example, if a digital wat^maik is inserted into a 
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digital version of a song, it is important Ihat a listener not be bothered by the slight 
changes introduced by the watennailL It is also important for the watermailc 
technique to maximize the encoding level and "'location sensitivity" in the signal to 
force damage to the content signal v^en removal is attempted. Digital watermarks 
5 address many of these concerns, and research in the field has provided extremely 
robust and secure implementations. 

What has been overlooked in many applications described in the art, 
however, are systen[is which closely mimic distribution of content as it occurs in the 
real world. For instance, many watermaiidng systems require the original un- 

10 watermariced content signal to enable detection or decode operations. These include 
highly publicized efforts by NlBC, Digimarc and others. Such techniques are 
problematic because, in the real world, original master copies reside in a rights 
holders vaults and are not readily available to the public. 

With much activity overly focused on watermark survivability, flie 

IS security of a digital watermark is suspect Any sunple linear operation for encoding 
information into a signal may be used to erase the embedded signal by invertrag the 
process. This is not a difficult task, especially vAion detection software is a plug-in 
fieely available to the public, such as with Digimarc. In general, these systems seek 
to embed cryptographic information, not cryptographically embed information into 

20 target media content. 

Other methods embed ownership information that is plainly visible in 
the media signal, such as the inethod described in US Patent No. 5,530,739 to 
Braudaway et al. The system described in Braudaway protects a digitized image by 
encoding a visible watermark to deter piracy. Such an implementation creates an 

25 immediate weakness in securing the embedded information because the watermark 
is plainly visible. Tlius, no search for the embedded signal is necessary and the 
watennark can be more easily removed or altered. For example, while certainly 
useful to some rights owners, simply placing the symbol in the digital 
information would only provide limited protection. Removal by adjusting the 

30 brightness of the pixels forming die would not be difficult with respect to the 
computational resources required. 
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Other relevant prior art includes US Patents No. 4,979,210 and 
5,073,925 to Nagata et al., vMoh encodes infonnation by modulating an audio 
signal in the amplitude/time domain. The modulations introduced in tiie Nagata 
process cany a "copy/don't copy" message, which is easily found and circumvented 
5 by one skilled in the art. The granularity of encoding is fixed by the amplitude and 
fiequency modulation limits required to maintain inaudibility. These limits are 
relatively low, making it impractical to encode more infonnation using the Nagata 
process. 

Although US Patent No. 5,664,018 to Leighton describes a means to 

10 prevent collusion attacks m digital watermarks, tiie disclosed method may not 
actually provide the security described. For-example, in cases where the 
watennaridng technique is linear, the "'insertion envelope" or 'Svatermarking space" 
is well-defined and thus susceptible to attacks less sophisticated than collusion by 
unauthorized parties. Over-encoding at the watennaiking encoding level is but one 

15 simple attack in such linear implementations. Another consideration not made by 
Leighton is that coramercially-valuable content may already exist in a un- 
watennarked form somewhere, easily accessible to potential pirates, gutting the need 
for any type of collusive activity. Digitally signiog the embedded signal with 
preprocessing of watermark data is more likely to prevent successful collusion. 

20 Furthennore, a ""baseline" watermark as disclosed is quite subjective. It is simply 
described else>;^ere in the art as the ""perceptually significant" regions of a signal. 
Making a watermarking fimction less linear or inverting the insertion of watermarks 
would seem to provide the same hcneSt without the additional work required to 
create a ""baseline" watermaric. Indeed, watermarking algorithms should already be 

25 capable of defining a target insertion envelope or region without additional steps. 
What is evident is the Lei^ton patent does not allow for initial prevention of attacks 
on an embedded watermark as the content is visibly or audibly unchanged. 

It is also important that any method for providing security also 
function with broadcasting media over networks such as the Internet, which is also 

30 referred to as ""streaming." Commercial ""plug-in" products such as RealAudio and 
RealVideo, as well as {plications by vendors VDONet and Xtreme, are conmion in 
such network envux)rmients. Most digital watermark implementations focus on 



wo 02/03385 



4 



PCT/USOO/18411 



common file base signals and fail to anticipate the security of streamed signals. It is 
desirable tibat any protection scheme be able to function with a plug-in player 
wi&out advanced knowledge of the encoded media stream. 

Other technologies focus solely on file-based security. These 
5 technologies illustrate the varying q)plications for security that must be evaluated 
for different media and distribution environments. Use of cryptolopes or 
cryptographic containers, as proposed by IBM in its Cryptolope product, and 
InterTrust, as described in U.S. Patents No. 4,827,508, 4,977,594, 5,050,213 and 
5,410,598, may discourage certain forms of piracy. Cryptographic containers, 

10 however, require a user to subscribe to particular decryption software to deaypt 
data. IBM's InfoMarket and InterTrust's DigiBox, among otiier implementations, 
provide a generalized niodel and need proprietary architecture to function. Every 
user must have a subscription or registration with the party which enciypts the data. 
Again, as a form of general encryption, the data is scrambled or encrypted without 

15 regard to the media and its fonnattmg. Finally, control over copyrights or otihier 
neighboring rights is left witihi.the implementing party, in this case, IBM, InterTrust 
or a similar provider. Methods similar to these **trusted systems" exist, and 
Cerberus Central Limited and Liquid Audio, among a number of companies, offer 
systems which may ftmctionally be thought of as subsets of IBM and InterTrust's 

20 more generalized security offerings. Both Cerberus and Liquid Audio propose 
proprietary player software which is registered to the user and "locked" in a manner 
parallel to the locking of content that is distributed via a cryptographic container. 
The economic trade-off in this model is that users are required to use each respective 
companies' proprietary player to play or otherwise manipulate content that is 

25 dowidoaded. I^ as is the case presently, most music or other media is not available 
via these proprietary players and more companies propose nonn^ompatible player 
formats, the proliferation of players will continue. Cerberus and Liquid Audio also 
by way of extension of their architectures provide for "near-CD quality*' but 
proprietary compression. This requirement stems from the necessity not to allow 

30 content that has near-identical data make-up to an existing consumer electronic 
standard, in Cerberus and Liquid Audio's case the so-called Red Book audio CD 
standard of 16 bit 44.1 kHz, so that comparisons with the proprietary file may not 
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yield how the player is secured. Knowledge of the playef s file format renders its 
security ineffective as a file may be replicated and played on any common player, 
not the intended proprietary player of the provider of previously secured and 
tmiquely formatted content This is the parallel weakness to public key ciypto- 
5 systems which have gutted security if enough plain text and cipher text comparisons 
enable a pirate to determine the user's private key. 

Many approaches to digital watermarking leave detection and 
decoding control with the implcanenting party of the digital watermark, not the 
oreatorofthe work to be protected. A set of secure digital watermark 

10 implementations address this fimdamental control issue forming the basis of key- 
based a^roaches. These are covered by the following patents and pending 
applications, the entire disclosures of v^ch are hereby incoxporated by reference: 
US Patent No. 5,613, 004 entitled '^Steganographic Method and Device" and its 
derivative US patent application Serial No. 08/775,216, US patent application Serial 

15 No. 08/587,944 entitled "Human Assisted Random Key Generation and AppUcation 
for Digital Watermark System," US Patent Application Serial No. 08/587,943 
entitled "Method for Stega-Cipher Protection of Computer Code," US patent 
application Serial No. 08/677,435 entitled "Optimization Methods for the Insertion, 
Protection, and Detection of Digital Watermarks in Digitized Data,'* and US Patent 

20 AppUcation Serial No. 08/772,222 entitled "Z-Transfonn Implementation of Digital 
Watermarks." Public key crypto-systems are described in US Patents No. 
4,200,770, 4,218,582, 4,405,829 and 4,424,414, the entire disclosures of which are 
also hereby incorporated by reference. 

In particular, an improved protection scheme is described in '"Method 

25 for Stega-Cipher Protection of Computer Code," US patent application Serial No. 
08/587,943. This technique uses the key-based insertion of binary executable 
computer code within a content signal that is subsequently, and necessarily, used to 
play or otherwise manipulate tiie signal m which it is encoded. With this system, 
however, certain computational requirements, such as one digital playo: per digital 

30 copy of content, may be necessitated. For instance, a consumer may download 
many copies of watermarked content With this technique, the us^ would also be 
downloading as many copies of the digital play^ program. While tiiis form of 
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security may be desirable for some applications, it is not £q;)propriate in many 
circumstances. Finally, even when digital infomiation is distributed in encoded 
form, it may be desirable to allow unauthorized users to play the information with a 
digital player, perhaps with a reduced level of quality. For example, a popular song 
5 may be encoded and freely distributed in encoded form to the public. The public, 
perhaps using commonly available plug-in digital players, could play tiie encoded 
content and hear the music in some degraded form. The music may sound choppy, 
or fuzzy or be degraded in some other way. This lets the public decide, based on the 
available lower quality version of the song, if they wiant to purchase a key firom the 

10 publisher to decode, or ''clean-up,'' the content Sunilar approaches could be used to 
distribute blurry pictures or low quality video* Or even ''degraded" text, in the sense 
that only authenticated portions of the text can be determined with the 
predetemuned key or a validated digital signature for the intended message. 

In view of the fotegoing, it can be appreciated that a substantial need 

1 S exists for a method allowing encoded content to be played, with degraded quality, by 
a plug-in digital player, and solving the other problems discussed above. 
SUMMARY OF THE INVENTION 

The disadvantages of the art are alleviated to a great extent by a 
method for combining transfer functions with predetermined key creation. In one 

20 embodiment, digital information, including a digital sample and format information, 
is protected by identifying and encoding a portion of the format information. 
Encoded digital information, including the digital sample and the encoded fomaat 
information, is generated to protect the original digital information. 

In another embodiment, a digital signal, including digital samples in a 

25 file format having an inherent granularity, is protected by creating a predetermined 
key. The predetermined key is comprised of a transfer function-based mask set to 
manipulate data at flie inherent granularity of the file format of flie underlying 
digitized samples. 

With these and other advantages and features of the invention that 

30 will become hereinafter apparent, the nature of the invention may be more clearly 
understood by reference to the following detailed description of the invention, the 
appended claims and to the several drawings attached herein. 
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BRIEF DESCRIPTION OF THE DRAWINGS 

FIG. 1 is a block flow diagram of a mefhod for copy protection or 
authentication of digital information according to an embodiment of tiie present 
iaventioiL 
5 DETAILED DESCRIPTION 

In accordance with an embodiment of the present invention, a method 
combines transfer functions witii predetermined key creatioiL Increased security is 
achieved in the method by combining elements of "pubUc-key steganography" with 
cryptographic protocols, which keep in-transit data secure by scrambling the data 

10 with ^^keys" in a maimer that is not ^parent to those with access to the content to be 
distributed Because different forms of randonmess are combined to offer robust, 
distributed security, the present invention addresses an architectural ''gray space" 
between two important areas of security: digital watermarks, a subset of the more 
genoal art of steganography, and cryptogrq>hy. One form of randomness exists in 

IS the mask sets that are randomly created to map watermark data into an otherwise 
unrelated digital signal. The second form of-randomness is the random 
permutations of data formats used with digital players to manipulate tiie content with 
the predetermined keys. These forms can be thought of as the transfer function 
versus the mapping function inherent to digital watermarking processes. 

20 According to an embodiment of the present invention, a 

predetermined, or randomly generated, key is used to scramble digital information in 
a way that is unlike known ^'digital watermark'' techniques and public key oypto- 
system. As used herein, a key is also refened to as a '"mask set" which includes 
one or more random or pseudo-random series of bits. Prior to encoding, a mask can 

25 be generated by any cryptographically secure random generation process. A block 
cipher, such as a Data Encryption Standard (DES) algorithm, in combination with a 
sufiBciratiy random seed value, such as one created using a Message Digest 5 
(MD5) algorithm, emulates a cryptographically secure random bit generator. Hie 
keys are saved in a database, along with information matching them to the digital 

30 signal, for use in descrambling and subsequent viewing or playback. Additional file 
format or transfer property information is prepared and made available to the 
encoder, in a bit addressable maimer. As well, any audienticating function can be 
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combined, such as Digital Signature Standaid (DSS) or Secure Hash Algorithm 
(SUA). 

Using the predetermined key comprised of a transfer function-based 
mask set, the data representing the original content is manipulated at the inherent 
5 granularity of the file format of the underlying digitized samples. Instead of 
providing^ or otherwise distributmg, watermarked content that is not noticeably 
altered, a partially "scrambled'* copy of the content is distributed. The key is 
necessary both to register the sought-after content and to descramble the content into 
its original form. 

10 The present invention uses methods disclosed m "Method for Stega- 

Cipher ^tection of Computer Code," US Patent Application Serial No. 
08/587,943, with respect to transfer functions related to the common file formats, 
suchasPICT,TIFF, AIFF, WAV,etc. Additionally, m cases where the content has 
not been altered beyond being encoded with such functional data, it is possible for a 

15 digital player to still play the content because tiie file format has not been altered. 
Thus, th^ encoded content could still be played by a plug-in digital player as 
discrete, digitally sampled signals, watermarked or not. That is, the structure of the 
file can remain basically unchanged by the watermarking process, letting common 
file format based players work with the "scrambled'' content 

20 For example, the Compact Disc-Digital Audio (CD-DA) format 

stores audio infomiation as a series of &am€S. Each fi^ame contains a number of 
digital samples representing, for example, music, and a header that contains file 
format information. As shown m FIG. 1, according to an embodhnent of the 
present invention some of the header information can be identified and ''scrambled" 

25 using tiie predetemiined key at steps 110 to 130. The music samples can lemam 
unchanged. Using tiiis technique, a traditional CD-DA player will be able to play a 
distorted version of tiie music in the sample. The amount of distortion will depend 
on the way, and extent, that the header, or file format, information has been 
scrambled It would also be possible to instead scramble some of the digital samples 

30 \\Me leaving the header information alone. In general, the digital signal would be 
protected by manipulatmg date at the mheient granularity, or ''firames," of the CD- 
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DA file fotmat To decode the information, a predetermined key is used before 
playing the digital information at steps 140 and 150. 

A key*based decoder can act as a '*plug-in" digital player of broadcast 
signal streams without foreknowledge of the encoded media stream. Moreover, the 
5 data format orientation is used to partially scramble data m transit to prevent 
unauthorized descrambled access by decoders that lack authorized keys. A 
distributed key can be used to unscramble the scrambled content because a decoder 
would understand how to process the key. Similar to on*-the*-£ly decryption 
operations, &e benefits inherent in this embodiment include the fact that the 

10 combination of watermarked content security, \^ch is key-based, and the 
descrambling of die data, can be performed by the same key v^ch can be a plurality 
of mask sets. The mask sets may include primary, convolution and message 
delimits masks with file format data included, r 

The creation of an optimized ""envelope" for insertion of watermarks 

15 provides the basis of much watermark security, but is also a complementary goal of 
the present invention. The predetermined or random key that is generated is hot 
only an essential map to access the hidden information signal, but is also the 
descrambler of the previously scrambled signal's format for playback or viewing. 

In a system requiring keys for watermarking content and validating 

20 die distribution of the content, different keys may be used to encode different 
information while secure one way hash Amotions or one-time pads may be 
incorporated to secure the embedded signal. The same keys can be used to later 
validate the embedded digital signature, or even fully decode the digital watermark 
if desired. Publishers can easily stipulate diat content not only be digitally 

25 watermarked but that distributors must check the validity of the watermarks by 
performing digital signature-checks witii keys diat lack any other functionality. The 
system can extend to simple authentication of text in other embodiments. 

Before such a market is economically feasible, there are other 
methods for deploying key-based watOTnarking coupled with transfer functions to 

30 partially scramble the content to be distributed without performing full public key 
enciyption, i.e., a key pair is not necessarily gwerated, simply, a predetermined 
key's function is created to re-map the data of the content file in a lossless process. 
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Moreover, the scrambling performed by the present invention may be more 
depwdent on the file in question. Dissimilarly, encryption is not specific to any 
particular media but is perfomied on data. The file format remains unchanged, 
rendmng tiie file useable by any conventional viewer/player, but the signal quality 
5 can be intentionally degraded in the absence of the proper player and key. Public- 
key encryption seeks to completely obscure the sensitive "plaintext to prevent 
comparisons with the "ciphertexf' to determine a user's private keys. Centralized 
encryption only differs in the utilization of a single key for both encryption and 
dectyption making the key even more highly vulnemble to attacks to defeat the 

10 encryption process. Mth the present invention, a highly sought after photograph 
may be hazy to the viewer usmg any number of commonly available, nonproprietary 
software or hardware, without the authorized key. Similarly, a commercially 
valuable song may sound poor. 

The benefit of some form of cryptography is not lost m the present 

15 invention. In fact, some piracy can be deterred vAien the target signal may be known 
but is clearly being protected through scrambling. What is not anticipated by known 
techniques, is an ala carte method to change various aspects of file formatting to 
enable various "scrambled states" for content to be subsequently distributed. An 
image may lack all red pixels or may not have any of the most significant bits 

20 activated. An audio sample can similarly be scrambled to render it less-than- 
commercially viable. 

The present invention also provides improvements over known 
network-based methods, such as those used for the streaming of media data over tiie 
Internet By manipulating file formats, the broadcast media, which has been altered 

25 to ^'fit'" within electroiuc distribution parameters, such as bandwidth availability and 
error correction considerations; can be more effectively utilized to restrict the 
subsequent use of the content while in transit as well as real-time viewing or 
playing. 

The mask set providing the transfer function can be read on a per-use 
30 basis by issuing an authorized or authenticating "key" for descrambling the signal 
that is apparent to a viewer or a player or possessor of the authenticating key. The 
mask set can be read on a per-computer basis by issuing the authorized key that is 
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more generalized for the computer ftat receives the broadcast signals. Metering and 
subscription models become viable advantages over knovm digital ^termark 
systems wfaich assist ia designating the ownership of a copy of digitized media 
content, but do not prevent or restrict the copying or manipulation of the sampled 
5 signal in question. For broadcast or streamed media, this is especially the case. 
Message authentication is also possible, though not guaranteeing the same security 
as an encrypted file as with general ciypto systems. 

The present invention thus benefits firom the proprietary player model 
without relying on proprietary players. No new players will be necessary and 

10 existing multimedia file formats can be altered to exact a measure of security which 
is fijrther increased when coi^led with digital watermarks. As with most consumer 
markets for media content, predominant file formats exist, de facto, and 
corre^nding formats for computers likewise exist. For a commercial compact disc 
quality audio recording, or 16 bit 44.1 kfife, corresponding file formats include: 

15 Audio Interchange File Format (AIFF), Microsoft WAV, Sound Designer U, Sun's 
.au, Apple's Quicktime, etc. For still image media, formats are similarly abundant: 
TIFF, PICT, JPEG, GIF, etc. Requiring the use of additional proprietary players, 
and their complementaiy file formats, for limited benefits in security is wastefiil. 
Moreover, almost all computers today are multimedia-capable, and this is 

20 inoteasingly so with the popularity of Intel's MMX chip architecture and the 
PowerPC line of microchips. Because file formatting is fimdamental in the playback 
of the underlying data, the predetermined key can act both as a map, for information 
to be encoded as watmnark data regarding ownership, and a descrambler of the file 
that has been distributed. Limitations will only exist in how large tiie key must be 

25 retrofitted for a given application, but any manipulation of file format information is 
not likely to exceed the size of data required versus that for an entire proprietary 
player. 

As with previous disclosures by the inventor on digital watermarking 
techniques, the present invention may be implemented with a variety of 
30 cryptographic protocols to increase both confidence and security in the underlying 
system. A predetermined key is described as a set of masks. These masks may 
include primary, convolution and message delimiter mask. In previous disclosures. 
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fhe functionality of these masks is defined solely for moping. The present 
invention includes a mask set vMch is also controlled by the distributing party of a 
copy of a given media signal. This znask set is a transfer function which is limited 
only by the parameters of the file format in question. To increase tiie uniqueness or 
5 security of each key used to scramble a given media file copy, a secure one way 
hash function can be used subsequent to transfer properties that are initiated to 
prevent the forging of a particular key. Public and private keys may be used as key 
pairs to further increase tiie unlikeliness that a key may be compromised. 

These same cryptographic protocols can be combined with the 

10 embodiments of the present invention in administering streamed content that 
requires authorized keys to correctiy display or play the streamed content in an 
unscrambled manner. As with digital watermarkmg, symmetric or asymmetric 
pubUc key pairs may be used in a variety of implementations. Additionally, the 
need for certification autiiorities to maintain autiientic key-pairs becomes a 

IS consideration for greater security beyond symmetric key implementations. The 
cryptographic protocols makes possible, as well, a message of text to be 
authenticated by a message authenticating function in a general computing device 
tiiat is able to ensure secure message exchanges between autiiorizing parties. 

Although various embodiments are specifically illustrated and 

20 described herein, it will be appreciated that modifications and variations of the 
present invention are covered by the above teachings and within the purview of tiie 
upended clahns without departing fit)m the spirit and intended scope of tiie 
invention. 
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What is claimed is* 

1. A method for copy protection of digital information, the digital 
information including a digital sample and format information, comprising the steps 

5 of: 

identifying a portion of the format information to be encoded; 
generating encoded format information from the identified portion of the 
format information; and 

generating encoded digital information, including the digital sample and the 
10 encoded format information. 

2. The method of claim 1, further comprising the step of requiring a 
predetemiined key to decode the encoded format information. 

3. The method of claim 2, whmm the digital sample and format information 
are configured to be used with a digital player, and wherein information output from 

15 the digital player will have a degraded quality unless the encoded format 
information is decoded with the predetermined key. 

4. The method of claim 3, wherein the information output from the digital 
player represents a still image, audio or video. 

5. The method of claim 3, wherein the information output represents text 
20 data to be authenticated. 

6. A method for protecting a digital signal, the digital signal including 
digital samples in a file format having an inherent granularity, comprising the step 
of: 

creating a predetermined key comprised of a transfer fimction-based mask 
25 set to manipulate data at the inherent granularity of the file format of the underlying 
digitized samples. 

7. The method of claim 6, wherein the digital signal represents a continuous 
analog waveform. 

8. The-method of claim 6, wherein the predetermined key comprises a 
30 plurality of mask sets. 

9. The method of claim 6, wherein die digital signal is a message to be 
authenticated. 
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10. The method of claim 6, herein the mask set is ciphered by a key pair 
comprising a public key and a private key. 

11. The method of claim 6, furOier comprising the step of: 

using a digital ^termarking technique to encode information that identifies 
S owaership, use, or other information about the digital signal, into the digital signal. 

12. The method of claim 6, wherein the digital signal represents a still 
image, audio or video. 

13. The method of claim 6, further comprising the steps of : 

selecting the mask set, including one or more masks having random or 
10 pseudo-random series of bits; and 

validating the mask set at tiie start of the transfer function-based mask set 

14. The method of claim 13, wherein said step of validating comprises the 

step of: 

comparing a hash value computed at the start of the transfer function-based 
15 mask set with a detomined transfer function of the hash value. 

15. The method of claim 6, further comprising the steps of: 

selecting the mask set, including one or more masks having random or 
pseudo-random series of bits; and 

authenticating the mask set by comparing a hash value computed at the start 
20 of the transfer function-based mask set with a determined transfer function of the 
hash value. 

16. The method of claim 13, whereui said step of validating comprises the 

step of: 

comparing a digital signature at the start of the transfer function-based mask 
25 set with a determined transfer function of the digital signature. 

1 7. The method of claim 6, furtiier comprising the steps of: 

selecting the mask set, including one or more masks having random or 
pseudo-random series of bits; and 

authenticating the mask set by comparing a digital signature at the start of the 
30 transfer function-based mask set with a detemained transfer function of the digital 
signature. 
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18. The method of claun 13, further comprising the step of: 

using a digital watermarldng technique to embed information Hiat identifies 
ownership, use, or other information about the digital signal, into the digital signal; 
and 

S wherein said step of validating is dependent on validation of the embedded 

information. 

19. The method of claim 6, further comprising the step of: 

computing a secure one way hash function of carrier signal data in the digital 
signal, wherein the hash function is insensitive to changes introduced into tiie carrier 
10 signal for the piupose of carrying the transfer function-based mask set. 

20. A method for protecting a digital signal, die digital signal including 
digital samples in a file format having an inherent granularity, comprising the steps 
of: 

creating a predetennined key comprised of a transfer function-based mask 
15 set that can manipulate data at the inherent granularity of the file format of the 
underlying digitized samples; 

authenticating the predetermined key containing the correct transfer 
function-based mask set during playback of the data; and 

metering the playback of the data to monitor content. 
20 21. The method of claim 20, wherein the predetermined key is authenticated 

to authenticate message information* 

22. A method to prepare for the scrambling of a sample stream of data, 
comprisuig tiie steps of: 

generating a plurality of mask sets to be used for encodmg, including a 
25 random primary mask, a random convolution mask and a random start of message 
delimiter; 

obtaining a transfer function to be implemented; 
generating a message bit stream to be encoded; 

loading the message bit stream, a stega-cipher map truth table, the primary 
30 mask, the convolution mask and the start of message delimiter into memory; 

initializing the state of a primary mask index, a convolution mask index, and 
a message bit index; and 
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setting a message size equal to the total number of bits in the message bit 

stream. 

23. A method to piepare for the encoding of stega-<;ipher infomia^ 
sample stream of data, comprising the steps of: 

5 generating a mask set to be used for encoding, the set including a random 

primary mask, a random convolution mask, and a random start of message delimiter; 

obtaining a message to be encoded; 

compressing and encrypting the message if desired; 

generating a message bit stream to be encoded; 
10 loading the message bit stream, a steg^-cipher map truth table, the primary 

mask, the convolution mask and the start of message delimiter into memory; 

initializing the state of a primary mask index, a convolution mask index, and 
a message bit index; and 

setting the message size equal to tiie total nimiber of bits in tiie message bit 

IS stream. 

24. The method of claim 23 "wherein the sample stream of data has a 
plurality of windows, further comprising the steps of: 

calculating over which windows in the sample stream the message will be 
encoded; 

20 computing a secure one way hash function of the information in the 

calcxilated windows, the hash function generating hash values insensitive to changes 
in the samples induced by a stega-cipher; and 

encoding the computed hash values in an encoded stream of data. 

25. The method of claim 13, wherein said step of selecting comprises tiie 
25 steps of: 

collecting a series of random bits derived from keyboard latency intervals in 
random typing; 

processing the initial series of random bits through an MD5 algorithm; 
using the results of the MD5 processing to seed a triple-DES encryption 

30 loop; 
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cycling through the triple-DES encryption loop, extracting the least significant bit of 
each result each cycle; and 

concatenating the triple-DES output bits into the random series of bits. 

26. A method for copy protection of digital information^ the digital 
5 information including a digital sample and format information, comprising the steps 

of: 

a identifying a portion of the digital sample to be encoded; 
generating an encoded digital sample from the identified portion of the 
digital sample; and 

10 g^erating encoded digital information, including tile encoded digital sample 

and the format informatioiL 

27. The method of claim 26, fiirther comprising the step of requiring a 
predetermined key to decode the encoded digital sample. 

28. The metiiod of claim 27, wherein the digital sample and format 
15 information are configured to be used with a digital player, and wherein information 

output fix)m the digital player will have a degraded quality unless the encoded digital 
sample is decoded with the predetermined key. 

29. The method of claim 27, wherein information output will have non 
authentic message data unless the encode digital sample is decoded wilii the 

20 predetermined key. 
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